Data Integrity and Confidentiality at Risk: File Replacement Vulnerability Affects Several Devices

CVE-2024-54099

6.7MEDIUM

Key Information

Vendor
Huawei
Status
Harmonyos
Emui
Vendor
CVE Published:
12 December 2024

Summary

File replacement vulnerability on some devices Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.

Affected Version(s)

HarmonyOS = 4.2.0

HarmonyOS = 4.0.0

HarmonyOS = 3.1.0

Refferences

https://consumer.huawei.com/en/support/bulletin/2024/12/

CVSS V3.1

Score:
6.7
Severity:
MEDIUM
Confidentiality:
High
Integrity:
Low
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Collectors

NVD DatabaseMitre Database
.